[Git][security-tracker-team/security-tracker][master] Correct NFU CVE for keycloak

Thu Nov 29 06:42:12 GMT 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f6891636 by Salvatore Bonaccorso at 2018-11-29T06:41:15Z
Correct NFU CVE for keycloak

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4220,7 +4220,6 @@ CVE-2018-19135 (ClipperCMS 1.3.3 does not have CSRF protection on its kcfinder f
 	NOT-FOR-US: ClipperCMS
 CVE-2018-19134
 	RESERVED
-	NOT-FOR-US: Keycloak
 CVE-2018-19133 (In Flarum Core 0.1.0-beta.7.1, a serious leak can get everyone's email ...)
 	NOT-FOR-US: Flarum Core
 CVE-2018-19130 (In Libav 12.3, there is an invalid memory access in vc1_decode_frame in ...)
@@ -15412,6 +15411,7 @@ CVE-2018-14638 (A flaw was found in 389-ds-base before version 1.3.8.4-13. The p
 	NOTE: https://pagure.io/389-ds-base/c/78fc627accacfa4061ce48977e22301f81ea8d73
 CVE-2018-14637
 	RESERVED
+	NOT-FOR-US: Keycloak
 CVE-2018-14636 (Live-migrated instances are briefly able to inspect traffic for other ...)
 	- neutron <unfixed> (low)
 	[stretch] - neutron <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f6891636a8906366926d8c1e187af3aff96fdd9b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f6891636a8906366926d8c1e187af3aff96fdd9b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181129/0d65a51b/attachment.html>
